Falhas do tipo CWE-863

2.111 resultados
CVE-2026-32101HIGHStudioCMS S3 Storage Manager Authorization Bypass via Missing `await` on Async Auth CheckEPSS 0.2%CVE-2026-48493MEDIUMSnipe-IT Vulnerable to Privilege Escalation for self via API Permissions AssignmentEPSS 0.2%CVE-2025-59824LOWOmni Wireguard SideroLink potential escapeEPSS 0.2%CVE-2026-25293CRITICALIncorrect authorization in PLC FWEPSS 0.2%CVE-2026-6277MEDIUMIncorrect Authorization in GitLabEPSS 0.2%CVE-2025-66581LOWFrappe LMS is Missing Server-Side Authorization in Business LogicEPSS 0.2%CVE-2026-42572MEDIUMHatchet: Cross-tenant information disclosure in `listTasksByDAGIds`EPSS 0.2%CVE-2024-8270MEDIUMmacOS Rocket.Chat: TCC Policy Bypass via Dylib Injection Due to Missing Code Signing Flags and Dangerous EntitlementsEPSS 0.2%CVE-2025-1415MEDIUMInformation disclosure in Proget MDMEPSS 0.2%CVE-2025-24839LOWUnauthorized AI bot activation via Wrangler pluginEPSS 0.2%CVE-2025-9056MEDIUMUnprotected service in the AudioLink component allows a local attacker to overwrite system files via unauthorized service invocation.EPSS 0.2%CVE-2026-55188HIGHRustFS: ListRemoteTargetHandler authorization bypass leaks replication target credentialsEPSS 0.2%CVE-2026-56152MEDIUMIncorrect Authorization in Elastic Defend Leading to Information DisclosureEPSS 0.2%CVE-2025-14774HIGHCommunication analysis between the Card Reader and TP2CardReaderService daemonEPSS 0.2%CVE-2026-33720MEDIUMn8n Has Authorization Bypass in OAuth Callback via N8N_SKIP_AUTH_ON_OAUTH_CALLBACKEPSS 0.2%CVE-2026-32895MEDIUMOpenClaw < 2026.2.26 - Sender Authorization Bypass in Slack System Event HandlersEPSS 0.2%CVE-2026-30943MEDIUMGokapi has Privilege Escalation in File ReplaceEPSS 0.2%CVE-2026-32978CRITICALOpenClaw < 2026.3.11 - Approval Bypass via Unrecognized Script RunnersEPSS 0.2%CVE-2026-20624MEDIUMAn injection issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.EPSS 0.2%CVE-2023-2257MEDIUMAuthentication Bypass in Hub Business integration in Devolutions Workspace Desktop 2023.1.1.3 and earlier on Windows and macOS allows an attEPSS 0.2%